14a4047bdd
flows: show messages from ak_message when flow is denied
...
fallback to same generic message
closes #3197
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-07-03 21:36:13 +02:00
17d33f4b19
flows: denied action ( #3194 )
2022-07-02 17:37:57 +02:00
c39a5933e1
core: create FlowToken instead of regular token for generated recovery links ( #3193 )
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
#2749
2022-07-02 14:17:41 +02:00
766ceda57a
core: re-create anonymous user when repairing permissions
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-07-01 17:20:06 +02:00
56fd436e5d
web: fix redirect when accessing authentik URLs authenticated
...
closes #3174
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-06-30 23:04:39 +02:00
504338ea66
web/admin: application wizard (part 1) ( #2745 )
...
* initial
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* remove log
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* start oauth
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* use form for all type wizard pages
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* more oauth
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* basic wizard actions
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* make resets work
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* add hint in provider wizard
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* render correct icon in empty state in table page
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* improve empty state
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* more
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* add more pages
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* fix
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* add group PK to service account creation response
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* use wizard-level isValid prop
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* re-add old buttons
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-06-26 00:46:40 +02:00
f28509608b
core: mark session as modified instead of saving it directly to bump expiry
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-06-22 08:48:14 +02:00
0d96e68c1e
core: add limit of 20 to group recursion
...
closes #3116
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-06-19 21:24:57 +02:00
2298eb124f
core: fix migrations when creating bootstrap token
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-06-17 10:10:04 +02:00
1c62a3db6e
core: user paths ( #3085 )
...
* init
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* add user_path_template
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* add to sources and flow
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* add outposts & api
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* dark theme for treeview
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* add search
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* add docs and tests for validation
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* add to user write stage
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* add web ui
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* web: improve error handling
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-06-15 12:12:26 +02:00
0cad56ec73
providers/oauth2: if a redirect_uri cannot be parsed as regex, compare strict ( #3070 )
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-06-10 23:32:57 +02:00
5e2d647a6c
core: trigger bootstrap tasks in server if we're debugging
...
closes #3040
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-06-09 20:21:31 +02:00
7beebe030d
lifecycle: run bootstrap tasks inline when using automated install
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-06-09 20:09:55 +02:00
2dfa6c2c82
core: add setting to open application launch URL in a new browser tab ( #3037 )
...
* core: add setting to open application launch URL in a new browser tab
* core: fix failing applications unit tests
* core: fix formatting
* core: include models only generated when debug mode is enabled
2022-06-05 14:32:22 +02:00
c11435780d
sources/oauth: fix twitter client missing basic auth
...
closes #3038
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-06-05 14:21:32 +02:00
817d538b8f
core: add additional filters to source viewset
...
https://github.com/goauthentik/terraform-provider-authentik/issues/184
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-06-05 00:56:46 +02:00
210775776f
core: add slug to built-in source
...
https://github.com/goauthentik/terraform-provider-authentik/issues/184
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-06-05 00:50:10 +02:00
fa04883ac1
events: use custom login failed signal, also send for mfa errors, add stage and more to context ( #3039 )
...
* use custom login failed signal, also send for mfa errors, add stage and more to context
closes #3027
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* include device class in event
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* update tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-06-04 15:30:56 +02:00
7ee655a318
core: add bootstrap variables with authentik prefix for helm charts ( #3031 )
...
https://github.com/goauthentik/helm/pull/72
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-06-03 15:22:56 +02:00
eba339ba27
core: improve loading speed of flow background
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-06-02 14:20:23 +02:00
c0cb891078
stages/authenticator_sms: verify-only ( #3011 )
2022-06-01 23:16:28 +02:00
2c6d82593e
root: cleanup session keys to use common format ( #3003 )
...
cleanup session keys to use common format
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-05-31 21:53:23 +02:00
34bcc2df1a
root: disable session_save_every_request as it overwrites the session with old data
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
#2991
2022-05-31 20:46:27 +02:00
3eb466ff4b
lifecycle: cleanup prometheus ( #2972 )
...
* remove high cardinality labels
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* retry worker number for prometheus multiprocess id
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* revert to pid, use subdirectories
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* cleanup more
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* use worker id based off of https://github.com/benoitc/gunicorn/issues/1352
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* fix missing app label
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* tests/e2e: remove static names
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* fix
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-05-29 21:45:25 +02:00
80c1dbdfbb
ensure all viewsets have filter and search and add tests ( #2946 )
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-05-24 22:01:18 +02:00
482491e93c
core: fix username validator not allowing changes that can be done via flows
...
closes #2755
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-05-24 19:40:54 +02:00
333e58ce2f
flows/layouts ( #2867 )
2022-05-16 01:10:23 +02:00
4de2ac3248
events: add task to expire seen notifications
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-05-14 22:41:50 +02:00
d4fd6153c8
api: fix OwnerFilter filtering out objects for superusers
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-05-14 21:36:00 +02:00
ab2299ba1e
outposts/ldap: cached bind ( #2824 )
...
* initial cached ldap bind support
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* add web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* add docs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* clean up api generation
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* use gh action for golangci-lint
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-05-08 16:48:53 +02:00
9077eff34d
root: add silk and debugging views
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-04-21 22:38:32 +02:00
2399fa456b
policies: fix current user not being set in server-side policy deny
...
closes #2039
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-04-21 22:30:27 +02:00
d283a5236c
core: add custom shell command which imports all models and creates events for model events
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-04-17 18:14:57 +02:00
e4486b98fc
web: Update Web API Client version ( #2733 )
...
Signed-off-by: GitHub <noreply@github.com >
Co-authored-by: BeryJu <BeryJu@users.noreply.github.com >
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-04-17 17:05:43 +02:00
778065f468
core: add flag to globally disable impersonation
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-04-17 16:52:55 +02:00
957bb1c5ef
core: make generated token length configurable
...
closes #2574
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-04-11 20:57:16 +02:00
2303a97bb9
core: add method to set key of token
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
#2574
2022-04-11 20:43:39 +02:00
cca33a74b6
core: fix error when checking generated users with no expiry
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-04-10 17:53:46 +02:00
f977bf61eb
providers/oauth2: make exp optional on jwt client_credentials flow
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-04-10 17:25:35 +02:00
e64ca4ab04
core: fix lint error
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-04-08 10:10:30 +02:00
5861d41ad3
tenants: add tenant-level attributes, applied to users based on request
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-04-06 10:41:35 +02:00
20262f3f4b
core: mark provider_obj as read_only
...
closes #2637
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-04-04 10:17:59 +02:00
633296503d
core: add grouping to applications ( #2648 )
...
* core: add grouping to applications
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* core: add new field to tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-04-02 23:08:58 +02:00
7a93614e4b
policies: fix tests
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-04-02 18:31:02 +02:00
86a8d00b3f
policies: sanitze_dict when returning log messages during tests
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-04-02 17:15:44 +02:00
d84ff2bbca
policies: add policy log messages to test endpoints
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-04-01 22:07:35 +02:00
bb8af2f19b
providers/oauth2: add client_assertion_type jwt bearer support ( #2618 )
2022-03-31 00:30:55 +02:00
123b0b2f05
core: fix pylint renamed variable
2022-03-28 08:58:13 +00:00
0c2b32da31
core: add num_pk to group for applications that need a numerical group id
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
#2497
2022-03-22 21:37:11 +01:00
be232e2b77
core: fix provider launch URL being prioritised over manually configured launch URL
...
closes #2493
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2022-03-16 10:26:55 +01:00
